Title :
Enabling Message Security for RESTful Services
Author :
Serme, Gabriel ; De Oliveira, Anderson Santana ; Massiera, Julien ; Roudier, Yves
Author_Institution :
SAP Labs. France, France
Abstract :
The security and dependability of cloud applications require strong confidence in the communication protocol used to access web resources. The mainstream service providers nowadays are shifting to REST-based services in the detriment of SOAP-based ones. REST proposes a lightweight approach to consume resources with no specific encapsulation, thus lacking of meta-data descriptions for security requirements. Currently, the security of RESTful services relies on ad-hoc security mechanisms (whose implementation is error-prone) or on the transport layer security (offering poor flexibility). We introduce the REST security protocol to provide secure service communication, together with its performance analysis when compared to equivalent WS-Security configuration.
Keywords :
Java; Web services; cloud computing; cryptographic protocols; service-oriented architecture; transport protocols; REST security protocol; RESTful services; SOAP-based services; Web resources; cloud application; communication protocol; mainstream service providers; message security; performance analysis; secure service communication; Encryption; Payloads; Protocols; Servers; Standards; Message Security; Performance; Protocol; REST;
Conference_Titel :
Web Services (ICWS), 2012 IEEE 19th International Conference on
Conference_Location :
Honolulu, HI
Print_ISBN :
978-1-4673-2131-0
DOI :
10.1109/ICWS.2012.94
